Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
4,822
Erlang
36
GitHub Actions
32
Go
2,413
Maven
5,000+
npm
4,052
NuGet
723
pip
3,844
Pub
12
RubyGems
933
Rust
1,005
Swift
38
Unreviewed advisories
All unreviewed
5,000+

818 advisories

Loading
conda-forge openssl-feedstock before 066e83c (2024-05-20), on Microsoft Windows, configures... High Unreviewed
CVE-2025-35471 was published May 13, 2025
Untrusted search path vulnerability in the installer of Content Transfer (for Windows) Ver.1.3... High Unreviewed
CVE-2022-41796 was published Oct 24, 2022
Adobe After Effects versions 16 and earlier have an insecure library loading (dll hijacking)... High Unreviewed
CVE-2019-8062 was published May 24, 2022
Uncontrolled search path in the Intel(R) GPA software before version 21.2 may allow an... High Unreviewed
CVE-2021-33101 was published Feb 11, 2022
Uncontrolled Search Path Element in software for Intel(R) PROSet/Wireless Wi-Fi in Windows 10 and... Moderate Unreviewed
CVE-2021-0169 was published Feb 11, 2022
CWE-427: Uncontrolled Search Path Element High Unreviewed
CVE-2025-23177 was published Apr 29, 2025
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or... Moderate Unreviewed
CVE-2023-49114 was published Feb 26, 2024
An authenticated local attacker who successfully exploited this vulnerability could insert and... High Unreviewed
CVE-2024-2637 was published May 14, 2024
Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-2768 was published Apr 23, 2025
Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This... High Unreviewed
CVE-2025-2769 was published Apr 23, 2025
DPMAdirektPro 4.1.5 is vulnerable to DLL Hijacking. It happens by placing a malicious DLL in a... High Unreviewed
CVE-2025-43950 was published Apr 22, 2025
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but... High Unreviewed
CVE-2017-16777 was published May 13, 2022
An untrusted search path (aka DLL Preload) vulnerability in the Cisco Network Academy Packet... High Unreviewed
CVE-2017-12313 was published May 13, 2022
An insecure suid wrapper binary in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware... High Unreviewed
CVE-2017-12579 was published May 13, 2022
An Uncontrolled Search Path or Element issue was discovered in i-SENS SmartLog Diabetes... High Unreviewed
CVE-2017-13993 was published May 13, 2022
Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive... High Unreviewed
CVE-2017-11158 was published May 13, 2022
Multiple untrusted search path vulnerabilities in installer in Synology Photo Station Uploader... High Unreviewed
CVE-2017-11159 was published May 13, 2022
A DLL Hijacking vulnerability in the programming software in Schneider Electric's SoMachine HVAC... High Unreviewed
CVE-2017-7966 was published May 13, 2022
Code injection vulnerability in Avira Total Security Suite 15.0 (and earlier), Optimization Suite... High Unreviewed
CVE-2017-6417 was published May 13, 2022
Code injection vulnerability in Avast Premier 12.3 (and earlier), Internet Security 12.3 (and... High Unreviewed
CVE-2017-5567 was published May 13, 2022
Code injection vulnerability in AVG Ultimate 17.1 (and earlier), AVG Internet Security 17.1 (and... High Unreviewed
CVE-2017-5566 was published May 13, 2022
Code injection vulnerability in Trend Micro Maximum Security 11.0 (and earlier), Internet... High Unreviewed
CVE-2017-5565 was published May 13, 2022
AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are... High Unreviewed
CVE-2021-38410 was published Jul 28, 2022
Uncontrolled Search Path Element vulnerability in OpenText Secure Content Manager on Windows... High Unreviewed
CVE-2024-12530 was published Apr 17, 2025
If Firefox was installed to a world-writable directory, a local privilege escalation could occur... High Unreviewed
CVE-2022-22736 was published Dec 22, 2022
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database